EUVD-2018-16684

Malware in sbrugna...

PT-2024-22272 · Grav · Grav

Name of the Vulnerable Software and Affected Versions: Grav versions prior to 1.7.45 Description: Grav is an open-source, flat-file content management system. The issue arises because Grav validates accessible functions through the Utils::isDangerousFunction function but does not impose...

The vulnerability of the Store Exporter plugin for WooCommerce in the WordPress content management system arises from the lack of protective measures for website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Store Exporter plugin for WooCommerce in the WordPress content management system is related to the failure to remove special elements during the processing of the woo-ce admin page. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting...

The vulnerability of the SafeHtml validator in the Hibernate Validator library allows attackers to perform cross-site scripting attacks.

The vulnerability in the SafeHtml validator of the Hibernate Validator library relates to the lack of measures taken to protect the structure of web pages during the processing of HTML content. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

The vulnerability of the CKEditor’s WYSIWYG page processing module allows attackers to carry out cross-site scripting attacks.

The vulnerability of the CKEditor’s WYSIWYG page editing module is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

CVE-2018-4899

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of...